Описание
Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation vulnerability in the installer. A local low privileged authenticated attacker may potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with elevated privileges.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:dell:supportassist_for_home_pcs:3.14.2.45116:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
7.3 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-426
CWE-426
Связанные уязвимости
CVSS3: 7.3
github
около 2 лет назад
Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation vulnerability in the installer. A local low privileged authenticated attacker may potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with elevated privileges.
EPSS
Процентиль: 12%
0.0004
Низкий
7.3 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-426
CWE-426